Azure Active Directory Integration - Classic Portal Setup

Note: These instructions are for the 'classic' Azure portal. If you are using new Azure portal, please use these instructions.If you're unsure which portal you are using, if your URL is "https://manage.windowsazure.com/..." you are using the CLASSIC portal; if your URL is "https://portal.azure.com/..." you are using the NEW portal.

Overview:

The Azure AD Integration allows system administrators to synchronize your users from your Azure active directory into the archive system. This feature is mainly designed to minimize the administration of users across multiple systems. Once the integration is established, users from your Azure active directory will be synchronized with the archive system.

Once you have added the archiving application to your Azure management portal, navigate to the applications 'QuickStart' page in Azure. Click the 'Configure' tab of your application to access the Client ID, configure keys and assign permissions.

You will need both the Client ID and a generated key

Next, the Tenant ID is part of the QuickStart URL for your Active Directory an your application. This will be the same for multiple applications you may create within the same active directory.

Enter the Client ID, generated Key, and Tenant ID into the specified fields in the archive application

Map the attributes

Once you've successfully established a connection between Azure and the archive application, you'll be able to map your attributes to the relevant fields.

Email address, username (which can be the email address if you wish), and name are the only fields synchronized for the time being. This will be expanded as the application evolves.

Review and Finish

Lastly, the system will summarize your mapping and confirm the sync frequency. Currently this is a nightly option, as the application evolves you'll be able to customize this frequency.

Finishing the setup will start an initial sync.

Status and Management

Once integrated, the status of your active directory integration can be monitored from within the settings page. Details on the status, last sync, and any conflicts can be reviewed and managed from this page as well as any necessary updates to credentials or attribute mappings by selecting 'Manage' within any of the relevant sections.

Users in your Azure active directory will be automatically created in the archive system. These users will initially be 'disabled' (see the KB article related to Enabling users for more information). Additionally, synchronized users will not be assigned any role in the system, when enabling them, a role will also need to be assigned (see the KB article related to assigning user roles for more information as this can be done individually or in bulk).

Similarly, users that are deleted from your Azure active directory after having been added to the archive system will be disabled on the next sync to ensure their access restricted.

Locating the Office 365 Tenant ID

Choose one of the following procedures.

Use the Azure AD portal

Office 365 uses Azure AD to manage user accounts.

You can find your tenant ID in the Azure AD portal. You'll need to be an Azure AD administrator.

To find your Office 365 tenant ID in the Azure AD portal

Log in to Azure AD as an administrator.

(You can reach Azure AD from the Office 365 Admin center by selecting Azure AD on the Admin centers list.)

In the Azure AD portal, click Active Directory.

In the Active Directory list, click the directory that you're using with your Office 365 tenant.

The tenant id for your Office 365 tenant is displayed as part of the URL: